AMENDMENTS TO THE CLAIMS 



This listing of claims replaces all prior versions and listings of claims in the application. 
Listing of claims: 

Please cancel claims 3, 5, 6, 11, 13, 14 and 20 without prejudice. 

1. (currently amended) A computer-implemented method for managing access to 
computer-provided services for a plurality of requesters, comprising: 

defining combinations of access characteristics and associating each of the 
combinations with a security level , wherein the access characteristics include a type of 
device with which the session is maintained, characteristics of a network over which the 
session is maintained, and characteristics of an authentication method : 

associating each of the services with one of the security levels; 

processing a login request from a requester, whereby a session is initiated; 

determining access characteristics of the session; 

receiving a request for one of the services from the requester; 

authenticating the requester with an authentication method: and 

granting access to the one of the services if the access characteristics of the 
session level are associated with a security level that satisfies the security level 
associated with the one of the services. 

2. (original) The method of claim 1 , further comprising, if the access characteristics of 
the session are associated with a security level that does not satisfy the security level 
requirement associated with the one of the services, then prompting the requester for 
authentication data. 

3. (canceled) 
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4. (original) The method of claim 1 , wherein the access characteristics include 
ownership rights of a device with which the session is maintained. 

5. (canceled) 

6. (canceled) 

7. (original) The method of claim 1 , further comprising associating each of the 
services with one of the security levels in response to user selections of the security 
levels. 

8. (original) The method of claim 1 , further comprising: 

providing a plurality of user-selectable security categories, each security 
category including a set of security levels associated with the services; 

establishing one of the security categories as an operating security category in 
response to user selection of the one of the security categories; and 

granting access to the one of the services if the access characteristics of the 
session are associated with a security level that satisfies the security level requirement 
associated with the one of the services in the operating security category. 

9. (currently amended) In a system including a plurality of communications devices 
coupled to one or more computer-provided services via a gateway arrangement, a 
method for managing access to the services for a plurality of users at the 
communications devices, comprising: 

defining combinations of access characteristics and associating each of the 
combinations with a security level at the gateway arrangemen t, wherein the access 
characteristics includ e a type of device with which the session is maintained. 
characteristics of a net work over which the session is maintained, and characteristics of 
an authentication method : 

associating each of the services with one of the security levels at the gateway 
arrangement; 
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processing a login request from a user at the gateway arrangement, whereby a 
session is initiated between a communications device and a service; 
authenticati ng the user with an authentication method; 

determining access characteristics of the session at the gateway arrangement; 

receiving at the gateway arrangement a request for one of the services from the 
user of the communications device; and 

granting access to the one of the services if the access characteristics of the 
session are associated with a security level that satisfies the security level associated 
with the one of the services. 

10. (original) The method of claim 9, further comprising, if the access characteristics of 
the session are associated with a security level that does not satisfy the security level 
requirement associated with the one of the services, then prompting the user at the 
communication device for authentication data. 

1 1 . (canceled) 

12. (original) The method of claim 9, wherein the access characteristics include 
ownership rights of a device with which the session is maintained. 

13. (canceled) 

14. (canceled) 

15. (original) The method of claim 9, further comprising associating each of the 
services with one of the security levels in response to user selections of the security 
levels. 

16. (original) The method of claim 9, further comprising: 
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providing a plurality of administrator-selectable security categories at the 
gateway arrangement, each security category including a set of security levels 
associated with the services; 

establishing one of the security categories as an operating security category at 
the gateway arrangement in response to administrator selection of the one of the 
security categories; and 

granting access to the one of the services if the access characteristics of the 
session are associated with a security level that satisfies the security level requirement 
associated with the one of the services in the operating security category. 

1 7. (currently amended) An apparatus for managing access to computer-provided 
services for a plurality of users operating respective communications devices, 
comprising: 

means for defining combinations of access characteristics and associating each 
of the combinations with a security level , wherein the access characteristics include a 
type of device with whi ch the session is maintained, characteristics of a network over 
which the session is ma intained, and characteristics of an authentication method : 

means for associating each of the services with one of the security levels; 

means for processing a login request from a user, whereby a session is initiated; 

means for determining access characteristics of the session; 

means for receiving a request for one of the services from the user; 
means for authenticatin g the requester with an authentication method: and 

means for granting access to the one of the services if the access characteristics 
of the session are associated with a security level that satisfies the security level 
associated with the one of the services. 

1 8. (currently amended) A gateway arrangement for managing access to computer- 
provided services for a plurality of users at respective communications devices, 
comprising: a computing system configured with combinations of access characteristics 
and associated security levels and services associated with the security levels , wherein 
the access characteristics include a type of device with which the session is maintained. 
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characteristics of a network over which the session is maintained, and characteristics nf 
an authentication method, the gateway arrangement further configured to process login 
requests from the users , authenticate the requester with an authentication method. tm4 
establish sessions between the communications devices and the services, determine 
access characteristics of the sessions, and selectively grant access to a service 
requested by a user if the access characteristics of the user's session are associated 
with a security level that satisfies the security level associated with the service. 

1 9. (currently amended) The apparatus of claim 1 8, wherein the access 
characteristics further include im minn+nH fmm +hn j r 0 Lip in cl u di ng a typ o o f d o vi cu 
w i th wh i ch tho oooo i ono am maintained, ownership rights of devices with which the 
sessions are maintainpd nnri nhnmntnriotino nf n nrtwnrlr ov e r wh ic h th e j C" i o n - a rc 



20. (canceled) 
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